Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
ChurchcrmChurchcrm

56 matches found

CVE
CVEadded 2023/06/29 12:15 a.m.25 views

CVE-2023-33661

Multiple cross-site scripting (XSS) vulnerabilities were discovered in Church CRM v4.5.3 in GroupReports.php via GroupRole, ReportModel, and OnlyCart parameters.

6.1CVSS6.2AI score0.00456EPSS
CVE
CVEadded 2023/08/08 4:15 p.m.25 views

CVE-2023-38764

SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the birthmonth and percls parameters within the /QueryView.php.

7.5CVSS7.5AI score0.00067EPSS
CVE
CVEadded 2023/08/08 4:15 p.m.25 views

CVE-2023-38768

SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the PropertyID parameter within the /QueryView.php.

7.5CVSS7.5AI score0.00067EPSS
CVE
CVEadded 2024/02/21 6:15 p.m.25 views

CVE-2024-25898

A XSS vulnerability was found in the ChurchCRM v.5.5.0 functionality, edit your event, where malicious JS or HTML code can be inserted in the Event Sermon field in EventEditor.php.

6.1CVSS6AI score0.00093EPSS
CVE
CVEadded 2023/08/08 4:15 p.m.24 views

CVE-2023-38769

SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the searchstring and searchwhat parameters within the /QueryView.php.

7.5CVSS7.5AI score0.00067EPSS
CVE
CVEadded 2023/08/08 4:15 p.m.22 views

CVE-2023-38761

Cross Site Scripting (XSS) vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted payload to the systemSettings.php component.

6.1CVSS6AI score0.00224EPSS
Total number of security vulnerabilities56